Re: [Ecrit] Gen-ART review of draft-ietf-ecrit-psap-callback-10
Hannes Tschofenig <hannes.tschofenig@gmx.net> Thu, 26 September 2013 13:23 UTC
Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: ecrit@ietfa.amsl.com
Delivered-To: ecrit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6356821F9AB4 for <ecrit@ietfa.amsl.com>; Thu, 26 Sep 2013 06:23:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.161
X-Spam-Level:
X-Spam-Status: No, score=-101.161 tagged_above=-999 required=5 tests=[AWL=0.819, BAYES_00=-2.599, RCVD_IN_SORBS_WEB=0.619, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vKWo8ysIS4uk for <ecrit@ietfa.amsl.com>; Thu, 26 Sep 2013 06:23:15 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.15.18]) by ietfa.amsl.com (Postfix) with ESMTP id BDE6621F8E97 for <ecrit@ietf.org>; Thu, 26 Sep 2013 06:23:03 -0700 (PDT)
Received: from [10.255.129.59] ([194.251.119.201]) by mail.gmx.com (mrgmx002) with ESMTPSA (Nemesis) id 0MJSLz-1VSDfL2RVj-0034OR for <ecrit@ietf.org>; Thu, 26 Sep 2013 15:22:52 +0200
Message-ID: <52443519.5020502@gmx.net>
Date: Thu, 26 Sep 2013 16:22:33 +0300
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20120428 Thunderbird/12.0.1
MIME-Version: 1.0
To: "Vijay K. Gurbani" <vkg@bell-labs.com>
References: <523C783A.6070502@bell-labs.com>
In-Reply-To: <523C783A.6070502@bell-labs.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Provags-ID: V03:K0:qg0J+a5jngtBJ/h+shyI8uWye+ksbpfaNe3xuadOvzNLm/qARK0 uH3eIjZQvbRvhwt/FOevDP3ZjrMihX9p4CQ/XeJ5v6A82iyh57+SfLqbAb8NQN3Mi0Ep19H HrDKKYq9UF0/PWcXZ19sM0UovBWJfgE46MlNymYFB0qyihOEcv7ie0DOtSahm6cEzNkt0wx AzkrX8E7bRCk5AnPHfLoQ==
Cc: marc.linsner@cisco.com, "ecrit@ietf.org" <ecrit@ietf.org>, General Area Review Team <gen-art@ietf.org>, draft-ietf-ecrit-psap-callback@tools.ietf.org, marshall@telecomsys.com
Subject: Re: [Ecrit] Gen-ART review of draft-ietf-ecrit-psap-callback-10
X-BeenThere: ecrit@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <ecrit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ecrit>, <mailto:ecrit-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ecrit>
List-Post: <mailto:ecrit@ietf.org>
List-Help: <mailto:ecrit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ecrit>, <mailto:ecrit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Sep 2013 13:23:20 -0000
Hi Vijay, thanks for reviewing the document. I have a few remarks below: On 20.09.2013 19:30, Vijay K. Gurbani wrote: > I am the assigned Gen-ART reviewer for this draft. For background on > Gen-ART, please see the FAQ at > <http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>. > > Please resolve these comments along with any other Last Call comments > you may receive. > > Document: draft-ietf-ecrit-psap-callback-10 > Reviewer: Vijay K. Gurbani > Review Date: Sep-20-2013 > IETF LC End Date: Sep-27-2013 > IESG Telechat date: Unknown > > This draft is basically ready for publication, but has a couple of > minor issues that should be fixed (or at least looked at) before > publication. > > Major: 0 > Minor: 2 > Nits: 4 (to improve readability) > > Minor: > - S5.2: Maybe I am missing something here, but I did not see any > proposed requirement as I read the text until this point. At least I > do not see a explicit requirement. > > The text in S5.1 constitutes an implicit requirement in that it asks > the SIP UA to override user interface configurations when an incoming > call has "Priority: psap-callback" header AND the SIP UA has recently > placed a call to an emergency service. Is this the requirement you > allude to in the first sentence of S5.2? If so, may be better to > explicitly pose this as a requirement. Section 5.1 describes the security threat. It is actually quite simple: Imagine you have a mechanism that allows you to bypass blacklists. The psap-callback is such a mechanism. So, the threat is that someone could misuse the psap-callback procedure to bypass blacklists (etc.) to send you unwanted traffic. The first requirement says that the developed mechanism has to provide some protection against it. > > The second paragraph of S5.2 constitutes a separate requirement. Yup. Note that both requirements aren't written with RFC 2119 requirements language but I believe that's fine in this case. > > Is it worth spelling these out explicitly as requirements? I don't think it will get any easier to read. > > - S5.3, last paragraph: It seems to me that the SIP UA is the authority > insofar as it can maintain state that an emergency call was made a > short while ago. Consequently, it would seem beneficial to couple the > presence of the callback marking with this state and override local UA > behaviour. This works at the UA and only if the callback reaches the same UA. However, as the scenarios outline in the beginning of the draft we are also talking about intermediaries and we have to consider more complex deployments where the signaling path of the original emergency call is not the same as the reversed signaling path of the callback. > > At least, this alleviates the eventuality that somehow the VoIP > provider forgot to scrub the marking AND the UA never made an emergency > call (thereby allowing spam through). > > Now, if it is your intent to keep the UA as stateless as possible, then > overriding local UA behaviour based on solely the callback marking is > fine. But I do not know what your assumptions are here with respect to > state maintained in the UA. So please determine if this approach of > asking UA to couple state information with the marking makes sense or > not. If not, feel free to disregard, but I did want to point it out. Keeping state information for this purpose is already part of the referenced PhoneBCP solution and does not require any new functionality in this document. We mention this specific procedure in Section 1. Unfortunately, it does not work in all scenarios (as Section 3 explains). Have a look at Section 1 (and maybe Section 3) again to double-check whether the story gets across. > > Nits: > - S3, first paragraph: "As explained in Section 1 a SIP entity examines > an incoming PSAP callback by comparing the domain of the PSAP with the > destination domain of the emergency call." > > Here, I would suggest adding a small phrase as follows: > > s/destination domain of the emergency call./destination domain of the > outbound emergency call placed earlier./ > Fixed. > - S3.1: s/synchronized as to state/synchronized,/ > This improves readability since the text as it currently stand is hard > to parse. OK. > > - S3.3, second paragraph: s/Similarly to/Similar to/ OK. > > - S3.5, first paragraph: s/later does leave/later leaves/ Ok. Thanks for the feedback. Ciao Hannes > > Thanks, > > - vijay
- Re: [Ecrit] Gen-ART review of draft-ietf-ecrit-ps… Hannes Tschofenig
- Re: [Ecrit] Gen-ART review of draft-ietf-ecrit-ps… Hannes Tschofenig
- Re: [Ecrit] [Gen-art] Gen-ART review of draft-iet… Christer Holmberg
- Re: [Ecrit] Gen-ART review of draft-ietf-ecrit-ps… Hannes Tschofenig